Lab
A Cloud Guru

Performing a Packet Capture

In this learning activity, you will need to perform a packet capture of web requests from `Client1` (10.0.1.11) to `Server1` (10.0.1.10) and the requisite responses. The resulting file should only contain this data.

Try for free Contact sales

Path Info

Level

Intermediate

Duration

1h 0m

Published

Nov 14, 2018

Challenge

Install tcpdump

You will need to install tcpdump:

# yum install tcpdump
Challenge

Begin the Packet Capture

You will want to apply a capture filter so that you're only getting web requests:

# tcpdump port 80 -w capture.pcap
Challenge

Generate Some Traffic

Since this isn't a public web server, you will need to generate some traffic from Client1 (10.0.1.11) to Server1 (10.0.1.10). This needs to be done while the tcpdump capture is running.
Challenge

Cancel the Capture and View the File

After you've generated some requests, you can cancel the running capture and view the file:

tcpdump -r capture.pcap

Move the file to /root/ if it's not there already.

Author

A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.